$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft File: M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft (raw, json) Hash identifier: NrXGyD5zhBEO+17Q3k97wkwjtm32bfJtPxZ7XhZfcXM= Subject key identifier: 26:BD:3F:40:D0:5B:41:FC:66:91:E4:81:49:22:36:44:21:2D:63:F4 Authority key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 Certificate issuer: /CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft Manifest number: BC Signing time: Thu 03 Apr 2025 05:11:28 +0000 Manifest this update: Thu 03 Apr 2025 05:11:27 +0000 Manifest next update: Thu 10 Apr 2025 05:11:27 +0000 Files and hashes: 1: M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl (hash: umk0R0mUfHdoA6DCLfoAvTMjMh771OndMKoTvRqnRXE=) 2: 1698D0A4F3C511EEA51BD730C4F9AE02.roa (hash: 4QxfcSzL20wlHccDIuyJTCp3h7Gtt89PLx10tCKRmWQ=) 3: 069E7950F3C611EE807A6F3EC4F9AE02.roa (hash: eM4tB5nnuyZAw+yzoibZmMU7jl9fV5PFjIZQp8eY2Fc=) 4: 07258E36F3C611EE807A6F3EC4F9AE02.roa (hash: Iu3dQo3UxQ27f0LG5TZGsWFPYKiAJAsXE8htjtPCT1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF41 Validity Not Before: Apr 3 05:11:27 2025 GMT Not After : Apr 10 05:11:27 2025 GMT Subject: CN=67ee187f-b91c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:93:5e:01:e3:17:3c:61:17:18:ef:98:3e:5f: be:48:b7:7f:19:62:aa:d6:72:90:53:91:dc:5b:56: f8:b2:13:37:1e:e5:a1:4c:04:3e:a2:5f:76:4d:50: 88:01:8b:b9:a7:06:79:37:4d:fa:d3:53:2f:04:f9: a5:bf:52:d6:20:8e:03:65:c8:2e:ee:81:1d:31:a1: 8d:23:78:0f:db:fb:36:b0:79:df:6b:81:ac:d7:77: 79:18:34:e0:50:a7:60:38:74:a2:85:da:72:0a:72: de:a9:02:4c:b2:6c:2e:3b:2f:14:c0:a3:b3:84:d6: 14:88:05:be:82:81:9d:f0:dd:cc:e9:30:1c:98:6c: 6e:ea:0d:44:7b:67:bc:72:bd:fc:b7:e1:f9:05:2f: 34:ea:6f:4b:a8:d3:56:f3:49:75:e9:66:38:69:1b: 2b:d7:1b:fc:b2:10:01:77:3c:c1:53:99:cf:9d:96: da:5a:58:d6:cc:85:9e:3a:6d:ae:99:fe:46:ec:f7: 2c:e9:3d:5b:d4:1c:c7:18:fb:5f:65:d2:11:0f:ee: 28:13:5c:2f:81:25:99:93:b4:32:fc:df:da:61:42: f9:82:62:7b:cb:fa:b3:55:47:6a:fd:fd:b8:5d:01: ba:f5:fb:b7:80:9d:d7:68:b5:84:b2:77:5f:41:c0: fe:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:BD:3F:40:D0:5B:41:FC:66:91:E4:81:49:22:36:44:21:2D:63:F4 X509v3 Authority Key Identifier: keyid:33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:47:55:57:95:fc:38:ef:94:f5:d4:f8:57:7f:e6:6f:b4:aa: 6e:40:7e:77:57:9a:8b:aa:5c:98:06:3e:dc:54:a0:db:d7:47: 4b:7a:7c:e6:bb:c3:93:24:39:1c:3c:53:fe:9a:b8:44:34:4d: 07:53:b0:50:ee:9f:e2:42:89:86:a8:cb:16:c5:36:63:e0:d9: 58:1b:98:a4:04:00:11:64:b5:b0:08:2e:85:e1:a4:54:59:eb: 04:35:92:3b:3e:0f:6c:58:61:cd:1c:8a:01:16:a4:c4:3e:c3: 01:3e:4a:a7:88:69:c0:b4:d1:c4:6c:90:06:34:3d:bb:4c:ff: 57:c0:38:28:35:d3:5f:48:d3:ec:aa:8c:2e:c3:2e:17:28:f3: 45:3d:cf:30:1e:84:2c:ef:68:89:c1:17:a5:80:57:a1:2b:86: 79:c6:f3:42:f3:87:9f:a2:d7:c9:d5:f2:33:a3:0b:13:d6:e6: 51:f6:4c:0f:8d:2b:80:79:1d:70:44:a7:d5:96:67:cd:26:19: 74:5a:10:b0:55:17:a9:5e:dd:e6:78:fe:16:b3:22:5d:5c:53: 00:f2:02:ae:23:70:53:20:1c:a8:ab:7e:83:93:12:33:60:37: d6:75:44:a7:8a:8f:71:64:8a:50:fa:92:b3:0c:ac:5a:cb:98: 6c:d4:c1:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGNDExMTAvBgNVBAUTKDMzNkRERTdFQzMyODA0OTk5NjQzNzFDQUVFMjYyMEZC RkNBQ0RDOTgwHhcNMjUwNDAzMDUxMTI3WhcNMjUwNDEwMDUxMTI3WjAYMRYwFAYD VQQDEw02N2VlMTg3Zi1iOTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpNeAeMXPGEXGO+YPl++SLd/GWKq1nKQU5HcW1b4shM3HuWhTAQ+ol92TVCI AYu5pwZ5N03601MvBPmlv1LWII4DZcgu7oEdMaGNI3gP2/s2sHnfa4Gs13d5GDTg UKdgOHSihdpyCnLeqQJMsmwuOy8UwKOzhNYUiAW+goGd8N3M6TAcmGxu6g1Ee2e8 cr38t+H5BS806m9LqNNW80l16WY4aRsr1xv8shABdzzBU5nPnZbaWljWzIWeOm2u mf5G7Pcs6T1b1BzHGPtfZdIRD+4oE1wvgSWZk7Qy/N/aYUL5gmJ7y/qzVUdq/f24 XQG69fu3gJ3XaLWEsndfQcD+EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCa9P0DQ W0H8ZpHkgUkiNkQhLWP0MB8GA1UdIwQYMBaAFDNt3n7DKASZlkNxyu4mIPv8rNyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUY0MS9DNzVEQTEzMkYy RkIxMUVFOUZDRjc2NENDNEY5QUUwMi9NMjNlZnNNb0JKbVdRM0hLN2lZZy1feXMz SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00yM2Vmc01vQkptV1EzSEs3aVlnLV95czNKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUY0MS9DNzVEQTEzMkYyRkIxMUVFOUZDRjc2NENDNEY5QUUwMi9NMjNlZnNNb0JK bVdRM0hLN2lZZy1feXMzSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaR1VXlfw475T11PhXf+ZvtKpuQH53V5qLqlyYBj7cVKDb10dLenzm u8OTJDkcPFP+mrhENE0HU7BQ7p/iQomGqMsWxTZj4NlYG5ikBAARZLWwCC6F4aRU WesENZI7Pg9sWGHNHIoBFqTEPsMBPkqniGnAtNHEbJAGND27TP9XwDgoNdNfSNPs qowuwy4XKPNFPc8wHoQs72iJwRelgFehK4Z5xvNC84efotfJ1fIzowsT1uZR9kwP jSuAeR1wRKfVlmfNJhl0WhCwVRepXt3meP4WsyJdXFMA8gKuI3BTIByoq36DkxIz YDfWdUSnio9xZIpQ+pKzDKxay5hs1MGn -----END CERTIFICATE-----Generated at Fri Apr 4 21:49:16 2025 by rpki-client